Cert suggests firms exit IE
“Internet Explorer is a hazard in itself, according to the US security advisory body
[…] Companies may have to make big changes to their desktop and web site strategies after US government security body Cert last week advised users to consider abandoning Microsoft’s Internet Explorer (IE) browser.
The advice followed the discovery of a new attack that exploits an IE flaw in combination with a separate vulnerability in Microsoft’s IIS web server software. Microsoft released an updated advisory on the IIS Download.Ject flaw after attackers used it to infect e-commerce sites. IE users were unknowingly redirected to a separate site and infected with a trojan.”